(25th May, 2017 02:07 AM)Nachteule Wrote: I was aware of this commit, but did not know anything about remote control of any machine running Kodi up to 17.1

But anyway, 17.2 is currently build on our vps and btw, if you're using the standard addon repos, this will never happen

But according to Checkpoint the vulnerability is used (exploited?) by loading an external subtitle file, they even demo using opensubtitles.org.
So even without using any addon anyone might be at risk if the subs file is "tampered" right?

Well the recent ransomware based on smb bug did not happen until the exploit was made public so... it doesn't hurt to be careful right ?
Don't want my Pi being hijack to a botnet

Only last year, about six hundred thousand Britons found much of their personal information online for only £19, following a hack and the resulting data breach on the British telecommunications firm TalkTalk. The situation gets even worse since British travellers too aren’t spared by these digital fugitives. Learn More